Year in Review: GitGuardian's Own Security Team
Join security engineer Kayssar on a captivating journey as he delves into the achievements and challenges encountered by GitGuardian's security team throughout the year. And distills invaluable insights on fostering a culture of security awareness and openness within a rapidly expanding scale-up.
Quality Assurance Engineering at GitGuardian
Learn about the day-to-day life of a QA engineer and the different techniques and processes used by the QA engineering team at GitGuardian to ensure high-quality products.
10 Tips to Optimize PostgreSQL Queries in Your Django Project
Philippe is back, this time joined by Laurent, to reveal their best tips & tricks to make Django and Postgres the best friends in the world.
Efficiently Computing Permissions at Scale—Our Engineering Approach
Eugène, Staff Engineer at GitGuardian, explains the thinking and the technical choices behind one of the most anticipated features of this year: Teams.
Love, Death & Triggers
Philippe explains how the GitGuardian engineering team cleverly leveraged Postgres triggers to achieve better performance. Until cons outweighed pros.
Life is Too Short to Review Spaces
Sofien, one of GitGuardian's Tech Leads, describes how pre-commit hooks are used to save time and also secure commits company-wide.
Should we target zero false positives?
While scanning millions of documents for secrets, should we really aim at reaching absolute zero or is the story not so simple?
Secrets Detection - Optimizing filter processes
From benchmark analysis, here are our key takeaways on building efficient real-time data filtering pipelines.
Why detecting generic credentials is a game changer
Discover what generic secrets detection is really about, why it's a critical component to build a performant secrets detection engine, and how GitGuardian is tackling this problem.
Hunting for secrets in Docker Hub: what we’ve found
In this article, we will explain why Docker images can contain sensitive information and give some examples of the type of secrets we found in public Docker images. Finally, we will compare our results to the ones we have with source code scanning.
How to safely open-source internal software — Some best practices
On this post we’ll be focusing on a few essentials that should be done before making your project open-source.